I'm part of realpentesting members and although these vulnerability was
published some moths ago, now we can publicity with these CVEs identifiers.
Also you can get more information about the vulnerablities which we
discovered in http://realpentesting.blogspot.com.es/p/advisories.html